Published: 07/10/2008 Updated: 11/10/2018

CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10

VMScore: 785

Vector: AV:N/AC:L/Au:N/C:C/I:N/A:N

Directory traversal vulnerability in MetaGauge 1.0.0.17, and probably other versions prior to 1.0.3.38, allows remote malicious users to read arbitrary files via a "..\" (dot dot backslash) in the URL.

Vulnerable Product	Search on Vulmon	Subscribe to Product
hammer-software metagauge
hammer-software metagauge 1.0.0.17

Title: MetaGauge 10017 Directory Traversal ------------------------------------------------------------- Vendor: Hammer Software Vendor URL: wwwHammer-Softwarecom Vendor Response: Vendor has been notified and has since addressed the issue in the latest software release Description: A directory traversal vulnerability exists in MetaGauge ...

Hammer Software MetaGauge version 10017 suffers from a directory traversal vulnerability ...

CWE-22 http://secunia.com/advisories/32094 http://www.securityfocus.com/bid/31596 http://securityreason.com/securityalert/4360 http://www.vupen.com/english/advisories/2008/2747 https://exchange.xforce.ibmcloud.com/vulnerabilities/45697 https://www.exploit-db.com/exploits/6686 http://www.securityfocus.com/archive/1/497039/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/6686/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-4421

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect